Edmodo XSS Bug

Edmodo Logo

Hello World,

@sameerphad72 Here. :-)

Within an 3–4 minutes of browsing edmodo, i found an xss bug on Public Resources Search Box.

Theory Proof-Of-Concept:

Edmodo Xss

Video Proof-Of-Concept:

Also html,css injection too works. :-)

29/10/2018: Bug Reported
30/10/2018: Bug confirmed by security team
30/10/2018: Bug Fixed Quickly!
31/10/2018: Swag Rewarded!

Follow Me:
twitter.com/sameerphad72
hackerone.com/sameerphad72
linkedin.com/in/sameerphad72

Thanks,
@sameerphad72